APNIC will be delivering this Network Monitoring and Packet Analysis workshop in conjunction with bsides. The focus of the workshop is to examine the elements involved in establishing and maintaining security for a network, and building an understanding and familiarity with the operations. This workshop aims at providing attendees a practical approach to:
Intrusion Detection systems, including installing SNORT and creating basic rules.
Packet Analysis using WireShark.
Session and Signature Analysis using Security Onion (free and open source Linux distribution) for intrusion detection, enterprise security monitoring, and log management.
AUD 10 deposit for registration. This deposit will be refunded latest the week after the conference, after confirmation of attendance. This is to discourage ticket reservations for just in case.
Engineers, Network Managers and Operators, and Security policy makers who are interested in network security and want to gain an understanding of the intrusion detection and network security monitoring.
It is assumed that participants have a basic understanding of network operations, Internet technologies, OSI reference model and TCP/IP.
Network security fundamentals
Network Intrusion detection
Participants are advised to bring their own laptop computers with high-speed Wi-Fi (802.11a/g/n/ac) and administrative access to system. It is also recommended that laptops have Intel i5 or i7 processor, >=8GB of RAM and 30GB of free hard disk space.